For the following project I am searching for someone who can build an integration for a basic application in AWS Lambda Python (Prefered) or NodeJS (with typescript preferred) which communicates with REST API’s from/to Hubspot and Jira cloud platform and using OAuth and 3 Legged Authentication (3LO). No basic auth! The requirement is to use AWS Cloud Native tooling like DynamoDB, API Gateway, DynamoDB, S3, Amplify, Cognito. If all is working properly within the agreement more work is on the horizon, to finish this integration with the real application integration between the two.
I've seen multiple blog post about it on the web, but don't have the time to figure this out, but I do know I want to implement it in a serverless manner. The required integration I am searching for is with OAuth 3 Legged Authentication (3LO) and this is statefull. So you have to refresh OAuth tokens, Store an Application secret and maybe do something with sessions. It also means that the user is involved in the authentication process by authorizing access to their AWS stored data and the 3rd party only once from a website, and this is after the admin users authenticates with Cognito. The Lambda backend needs to support multiple API platforms (two in this case now, maybe more in the future).
The requirement for this project: * 3 Legged Authentication must be used to have plugin level access on Hubspot/Jira (and later can be published) * AWS Cloud Native tooling like (e.g. )DynamoDB, API Gateway, DynamoDB, S3, Ampligy, Cognito. * AWS Resources need to be provisioned using CloudFormation or CDK * The AWS application has a public frontend where the end user can response to the incoming authorisation request/initiate the connection. * The public frontend on S3/Amplify needs to be protected with AWS Cognito and accessible to a list of standard users
The first deliverable in this project is a working integration with 1 platform (Jira or Hubspot). A demo account can be created at either platforms. The basic demo application on the AWS side needs to read or write some basic information from/to the Jira or Hubspot api on the plugin level of these platforms where probably a scope grant is needed.
Are you up for the challenge, please let me know. if you need more information, want to make sure you are offering the right things, or do not have sufficient knowledge to some small parts, sent me a PM so we can discuss.
Next week on friday (December 11th) I will deside who to work with
Maybe JWT helps in building the solution, I found this site to be helpfull in describing the process. Ofcourse Auth0 needs to be replaced with AWS cognito. https://auth0.com/blog/securing-aws-http-apis-with-jwt-authorizers